Professional Documents
Culture Documents
Smishing (SMS phishing) uses SMS systems of mobile phones to send fake text messages.
• The goal of smishing is to capture people's personal information. In order to do this,
"smishers" send out mass text messages designed to capture the recipients' attention.
• Some messages may provide a fake incentive, such as "You have won a free gift card,
visit this website to claim your prize." If you click on a link in the text message, you will
be directed to a fraudulent website that will ask you to enter your personal information,
such as your name, address, phone number, and email address. In some cases, a
smishing website will ask you to enter your bank account information or social security
number.
Vishing (voice mail phishing) another variation of phishing using voice mail message to
trick the user into calling the phone number contained in the message.
• As all phishing attacks, user will be asked to supply personal data thinking they are talking
to a legitimate company.
• 8.3.3 Pharming
8.3.8 Cookies
Cookies are small files or code that are stored on a user’s computer. They are sent by a web
server to a user’s computer. Each cookie is effectively a small look-up table containing pairs of
(key, data) values. The data gathered by cookies forms an anonymous user profile and doesn’t
contain personal data such as passwords or credit/debit card numbers. Cookies are very
efficient way of carrying data from one website session to another or even between sessions
on related websites.
Use of secure server is always advised, it supports any major security protocols such as
SSL/TLS that encrypt & decrypt messages to protect them against third party eavesdropping.
Encryption key
Plain text